diff options
| author | Henri Salo <henri@nerv.fi> | 2015-10-28 06:04:26 +0000 |
|---|---|---|
| committer | Henri Salo <henri@nerv.fi> | 2015-10-28 06:04:26 +0000 |
| commit | 6560be7f3f7f1a379d59dcfda520f90568fc94c3 (patch) | |
| tree | 1ef76e1e93e036408077ee6d57ff77c464e40779 /data/CVE/2007.list | |
| parent | 220e4dae3fc30c747194a9b65fe89635af51d873 (diff) | |
Cleanup double space after dot in notes to improve readability.
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@37391 e39458fd-73e7-0310-bf30-c45bca0a0e42
Diffstat (limited to 'data/CVE/2007.list')
| -rw-r--r-- | data/CVE/2007.list | 10 |
1 files changed, 5 insertions, 5 deletions
diff --git a/data/CVE/2007.list b/data/CVE/2007.list index 7c1053e0a8..fa2bd896ea 100644 --- a/data/CVE/2007.list +++ b/data/CVE/2007.list @@ -4802,7 +4802,7 @@ CVE-2007-4752 (ssh in OpenSSH before 4.7 does not properly handle when an untrus [sarge] - openssh <no-dsa> (minor issue in weak security measure) NOTE: An exploit needs limited control over the machine running a NOTE: trusted X client, so this is only a slight privilege - NOTE: escalation. The X Security extension is merely an afterthought + NOTE: escalation. The X Security extension is merely an afterthought NOTE: and is unlikely to provide strong security guarantees. CVE-2007-4748 (Buffer overflow in the PowerPlayer.dll ActiveX control in PPStream ...) NOT-FOR-US: PowerPlayer @@ -9345,7 +9345,7 @@ CVE-2007-2833 (Emacs 21 allows user-assisted attackers to cause a denial of serv {DSA-1316-1} - emacs21 21.4a+1-5.1 (bug #408929; low) - emacs-snapshot <removed> - NOTE: The bug is not present in emacs22 22.2+1-1. It was probably + NOTE: The bug is not present in emacs22 22.2+1-1. It was probably NOTE: fixed before the first emacs22 upload. CVE-2007-2832 (Cross-site scripting (XSS) vulnerability in the web application ...) NOT-FOR-US: Cisco @@ -10467,7 +10467,7 @@ CVE-2007-2380 (The Microsoft Atlas framework exchanges data using JavaScript Obj NOT-FOR-US: Microsoft Atlas CVE-2007-2379 (The jQuery framework exchanges data using JavaScript Object Notation ...) - jquery <unfixed> (unimportant) - NOTE: the paper in this reference is a guideline on how to avoid writing unsafe jquery applications. there really isn't anything to fix in the library itself. + NOTE: the paper in this reference is a guideline on how to avoid writing unsafe jquery applications. there really isn't anything to fix in the library itself. NOTE: https://www.fortify.com/vulncat/en/vulncat/javascript/javascript_hijacking_ad_hoc_ajax.html CVE-2007-2378 (The Google Web Toolkit (GWT) framework exchanges data using JavaScript ...) - gwt <removed> (unimportant; bug #563542) @@ -12011,7 +12011,7 @@ CVE-2007-1700 (The session extension in PHP 4 before 4.4.5, and PHP 5 before 5.2 [etch] - php4 6:4.4.4-8+etch1 [sarge] - php4 4:4.3.10-21 NOTE: This was fixed as a side-effect of previous security fixes, noting the - NOTE: status as of DSA-1286 as fixed version. likewise the oldstable + NOTE: status as of DSA-1286 as fixed version. likewise the oldstable NOTE: version was fixed. CVE-2007-1699 (Multiple PHP remote file inclusion vulnerabilities in the SWmenu ...) NOT-FOR-US: Mambo module SWmenu @@ -15485,7 +15485,7 @@ CVE-2007-0227 (slocate 3.1 does not properly manage database entries that specif [sarge] - slocate <not-affected> (Performs correct access checks) [etch] - slocate <no-dsa> (Minor issue) NOTE: slocate will allow users to find files in directories with the - NOTE: executable bit set but without the readable bit set. This is + NOTE: executable bit set but without the readable bit set. This is NOTE: an information leak. CVE-2007-0226 (SQL injection vulnerability in wbsearch.aspx in uniForum 4 and earlier ...) NOT-FOR-US: uniForum |